Dear,
it`s possible make an SSID based on MAC adress access control with meraki radius log in?.
i try to make this by the meraki administration and i´m not allowed.
Regards!
Solved! Go to solution.
I suggest you investigate using System Manager to facilitate implementing access security without relying on MAC addresses. This will avoid the use of shared passwords
no
Ok,
and if I want to generate a ssid with mac adress and some additional security what options do I have left?
Thanks!
@CarOneAdmin wrote:Dear,
it`s possible make an SSID based on MAC adress access control with meraki radius log in?.
i try to make this by the meraki administration and i´m not allowed.
Regards!
For the purpose you describe, MAC addresses are about as reliable as chocolate teapots. Better to use a certificate based system. Junior school kids know how to spoof MAC addresses.
Tmroberts,
Thanks! i want to avoid the future troubles on this future SSID (Enterprise LAN WIFI), thats is the reason of my cuestion.
is possible duplicate the security on a SSID with meraki radius? i want to avoid the user & password sharing!
Regards!
Have a look at this for starters -
Check if it meets your needs. There are plenty of people on this forum who have in depth experience of this. To date my use of certs is a little different but I am contemplating switching to this general method.
Uberseehandel,
Thanks for the comment, This configuration its very useful to me and for this proyect.
I have set meraki with this configuration and I feel a little closer than what I need.
but i need to make this more closed & restrict not allowed devices.
I need something more to only accept devices of my trust. For that i have been thinking on the security based on mac adress, but how i have listen on this forum its easy the mac adress spoofing now i am some lost but more close to my objective thanks to you and this forum.
Regards!
I suggest you investigate using System Manager to facilitate implementing access security without relying on MAC addresses. This will avoid the use of shared passwords
Uberseehandel,
thanks for the help & support!
Regards.
Why don't you use Meraki hosted auth? This will allow you to implement 802.1x auth on the SSID without needing to use MAC based auth and not need an external RADIUS server. See here for how this is set up in Dashboard: https://documentation.meraki.com/MR/Encryption_and_Authentication/Meraki_Cloud_Hosted_Authentication
MRCUR,
Yes. i am using meraki hosted auth. But my question it`s how i can avoid the user & password sharing.
i want only 10 machines with windows 10 connected to this SSID without the capacity of connect from another device.
Maybe exist a way of set the meraki configuration to the user can log one time at one device and with this
try to not suffer an external attack (this is my afraid)
Regards.
@CarOneAdminwrote:MRCUR,
Yes. i am using meraki hosted auth. But my question it`s how i can avoid the user & password sharing.
i want only 10 machines with windows 10 connected to this SSID without the capacity of connect from another device.
.......
Only 10 devices, have you considered JumpCloud - Directory as a Service ?